Why chroot is considered insecure?

security linux centos chroot

Because, in most instances, a root process can easily exit the chroot. This is by design, as chroot was never intended as a security device.

Alan Cox somewhat famously berated a developer that submitted a kernel patch to "fix" this behavior, claiming that chroot has been abused as a security device, but was never intended to be one.


I know at least one example of why it is considered to be insecure. A chroot environment /proc isn't isolated, so it's fairly easy to access resources not owned by processes started in your chroot.

Using a chrooted enviroment for SFTP is fine and improves the level of security significantly. Just don't abuse it as container-based virtualization, which does provide more levels of security. In this, I underline what's in @MDMarra's answer.

Related

can't get mod_proxy to correctly forward encoded slash (/) characters (%2f)
Rotate a file that's open and being written at all times
Extremely slow file transfers to Hyper-V VM on local machine
How to find cause of main file system going to read only mode
Why does /proc/net/tcp6 represents ::1 as ::100:0
Can't access site on EC2 instance via public ip
Is there a simple way to export/import firewalld settings?
df -h only shows 10GB, but I've assigned a 500GB disk to the GCE instance
How to kill all python processes except one from bash
How is this email subverting SPF checks?
ssh -R make target host accept connection on all interfaces
Do LTO tapes have spare/unused capacity?